REMARKS 



Rejection of claims 1-12 xmder 35 U.S.C. S102(b) 

The Examiner rejected claims 1-12 under 35 U.S.C. § 102(b) as being anticipated 
by "Understanding LDAP" by the International Technical Support Organization. 
Applicant traverses the Examiner's finding of anticipation. 

The Examiners Response to Arguments 

The Examiner responded to the previous office action by affirming the previous 
rejections supported by additional arguments. In these arguments, the Examiner makes 
the following statement: 

These limitations, "a directory that has a plurality of entries", and "a logical 
mapping that correlates each protected resource with a corresponding proxy entry" 
by definition means that these protected resources which applicant claims are 
indeed "stored" within the directory. They are logically associated in such a way 
as to be accessible from the directory. 

Applicant believes this statement illustrates a fiindamental misunderstanding and/or mis- 
characterization of the cited art and the applicant's claimed invention. If the above 
statement were true, then the bulk of the Examiner's argimients would logically follow. 
However, there is an important flaw in the logic of the above statement. The two 
limitations cited are not both located in the directory, so the conclusion is not correct. 
The limitation of "a logical mapping" in claim 1 is located within the application. So, the 
directory is not aware of the logical mapping that correlates the protected resource with 
the proxy entry. 
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In a telephone interview with the Examiner, the above argument was presented to 
the Examiner. Apphcant beUeves the cited art does not teach or discuss the invention as 
claimed and respectfully requests the Examiner to reconsider the rejection of claims 1-12. 
The response to the Examiner's rejection of the claims in the Request for Reconsideration 
filed on 08/05/04 is reproduced below for the examiner's convenience. 

Claim 1 

For the claim limitation "a plurality of protected resources that are not stored 
within the directory," the Examiner cites page 6, paragraph 5-6. This section of the cited 
art describes a distributed directory, a directory where different parts of the directory are 
stored in different locations. The Examiner then suggests that "resources may not be 
stored within the directory because the directory itself can be decentralized or 
distributed." This statement lacks normal logic. The Examiner seems to suggest that 
since the directory is decentraUzed, then resources in the remote directory portions are not 
in the directory. But even something that is decentralized has identifiable bounds and 
limits. And the bounds and limits of the distributed directory in Understanding LDAP 
includes all distributed portions of the directory. The cited document is the user's manual 
for the Lightweight Directory Access Protocol (LDAP). This manual deals with 
accessing resources that are within the directory, even if the directory is distributed. The 
cited document does not teach or even suggest protected resources outside the directory. 
Since the cited art does not teach or suggest using the directory authorization for 
protecting resources outside the directory, claim 1 is allowable over the cited art. 

For the claim limitation: 

"an application residing in the memory and executed by the at least one processor, 
the application including a logical mapping that correlates each protected resource 
with a corresponding proxy entry, the application determining whether the 
application is authorized to access a selected protected resource by invoking the 
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authentication and authorization functions in the directory service server to 
determine whether the proxy entry corresponding to the selected resource may be 
accessed, and if so, the application accesses the selected protected resource," 

the Examiner cites page 8, paragraph 1 of Understanding LDAP. This section of the cited 
art describes authorization based on access control lists (ACLs). This portion of the cited 
art does not teach the above claim limitation. Further, the Examiner has not mapped the 
teachings of the cited art on the many listed limitations of the claim. The elements not 
identified by the Examiner include the application in memory, the logical mapping that 
correlates to a protected resource, the proxy entry, and determining whether the 
application is authorized to access a selected protected resource by invoking the 
authentication and authorization functions in the directory service server to determine 
whether the proxy entry corresponding to the selected resource may be accessed, etc. As 
a result, the Examiner has failed to establish a prima facie case of anticipation for claim 1 
under 35 U.S.C. § 102(b). The cited art does not teach the above Umitations. For the 
reasons given above, claim 1 is allowable over the cited art, and applicants respectfully 
request reconsideration of the Examiner's rejection of claim 1 under 35 U.S.C. § 102(b). 

Claims 2-3 

Claims 2-3 depend on claim 1, which is allowable for the reasons given above. 
As a result, these claims are allowable as depending on an allowable independent claim. 

Claim 4 

For the claim limitation "identifying a proxy entry that corresponds to the external 
protected resource," the Examiner cites page 18, Figure 5 of Understanding LDAP. This 
portion of the cited art shows results from searching an Internet directory. The Examiner 
seems to be relying here on the same logic discussed above with reference to claim I, i.e., 
that since the directory is decentralized, then resources in the remote directory portions 
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are not in the directory. As discussed above, items in remote portions of a decentralized 
directory are still within the directory. The cited portion of the reference does not even 
deal with an external protected resource as recited in claim 4. The cited document is the 
user's manual for the Lightweight Directory Access Protocol. This manual deals with 
resources that are within the directory. The cited document does not teach or even 
suggest making a proxy in the directory for outside resources. Because the cited art does 
not teach or suggest using the directory authorization for protecting resources outside the 
directory, claim 4 is in condition for allowance over the cited art, and apphcants 
respectfully request reconsideration of the Examiner's rejection of claim 4 under 35 
U.S.C. § 102(b). 

Claim 5 

Claim 5 depends on claim 4, which is allowable for the reasons given above. As a 
result, claim 5 is allowable as depending on an allowable independent claim. 

Claim 6 

For the claim limitation "creating a proxy entry in the directory service for each 
protected resource," the Examiner cites page 18, Figure 5 of Understanding LDAP. This 
portion of the cited art shows results from searching an Intemet directory. The portion of 
the cited art does not teach or suggest creating a proxy entry in the directory service for a 
protected resource outside of the directory. Therefore, claim 6 is allowable over the cited 
art, and applicants respectfully request reconsideration of the Examiner's rejection of 
claim 6 under 35 U.S.C. § 102(b). 
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Claim 7 



Claim 7 depends on claim 6, which is allowable for the reasons given above. As a 
result, claim 7 is allowable as depending on an allowable independent claim. 

Claim 8 

For the claim limitation 

"a software application that uses a logical mapping that correlates a 
plurality of protected resources that are not stored or contained within the 
directory with corresponding proxy entries in a directory service that is 
managed by a directory service server, the application determining 
whether the application is authorized to access a selected protected 
resource by invoking authentication and authorization functions in the 
directory service server to determine whether the proxy entry 
corresponding to the selected resource may be accessed, and if so, the 
application accesses the selected protected resource," 

the Examiner cites page 7, section 1.1.4 Directory Security, paragraph 3, and page 8, 
paragraph. This portion of the cited art describes directory security in general. The 
portion of the cited art does not teach or suggest a software application that uses a logical 
mapping that correlates a plurality of protected resources that are not stored or contained 
within the directory. This portion of the cited art does not teach the above claim 
limitations. Further, the Examiner has not mapped the cited art on each and every 
limitation in the claim. As a result, the Examiner has failed to establish a prima facie 
case of anticipation for claim 8 under 35 U.S.C. § 102(b). Because the cited art does not 
teach the above limitations, claim 8 is in condition for allowance over the cited art, and 
applicants respectfiilly request reconsideration of the Examiner's rejection of claim 8 
under 35 U.S.C. § 102(b). 
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Claims 9-12 



Claims 9-12 depend on claim 8, which is allowable for the reasons given above. 
As a result, claims 9-12 are allowable as depending on an allowable independent claim. 

Conclusion 

In summary, none of the cited prior art, either alone or in combination, teach, 
support, or suggest the unique combination of features in applicants' claims presently on 
file. Therefore, applicants respectfully assert that all of applicants' claims are allowable. 
Such allowance at an early date is respectfully requested. The Examiner is invited to 
telephone the undersigned if this would in any way advance the prosecution of this case. 



Respectfully submitted. 




Bret J. Petersen 
Reg. No. 37,417 
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